Seven years of developing BackTrack Linux has taught us a significant amount about what we, and the security community, think a penetration testing distribution should look like. We’ve taken all of this knowledge and experience and implemented it in our “next generation” penetration testing distribution.

After a year of silent development, we are incredibly proud to announce the release and public availability of “Kali Linux“, the most advanced, robust, and stable penetration testing distribution to date.

Kali is a more mature, secure, and enterprise-ready version of BackTrack Linux. Trying to list all the new features and possibilities that are now available in Kali would be an impossible task on this single page. We therefore invite you to visit our new Kali Linux Website and Kali Linux Documentation site to experience the goodness of Kali for yourself.

We are extremely excited about the future of the distribution and we can’t wait to see what the BackTrack community will do with Kali. Sign up in the new Kali Forums and join us in IRC in #kali-linux on irc.freenode.net and help us usher in this new era.

Haider Mehmood Qureshi, an independent security researcher from Islamabad has been rewarded with $500 for detecting HTML Injection Vulnerability in Facebook.

According to Haider, Facebook was vulnerable in HTML code, their are some serious Remote HTML injection. Remote User was able to add any brand Name and Radio buttons, hence allowing Remote HTML injection. It was as simple as it sounds. The issue can also cause adding junk/spam entries into the database.

Bug details:

Vulnerability title: HTML Injection

Vendor homepage: http://m.facebook.com

Remote/Local: Remote

Tested on: Windows 7 64 bit Firefox browser (but should have worked on other OS and browsers (not sure about IE))

Detail: Facebook mobile provides a survey to evaluate the mobile user experience as they surf Facebook mobile site. Here is the survey https://m.facebook.com/survey.php . While entering the mobile phone brands , it provides a list of brands in case you didn't type the correct brand.

Remote User was able to add any brand Name and Radio buttons, hence allowing Remote HTML injection. It was as simple as it sounds. The issue can also cause adding junk/spam entries into the database.

Haider Mehmood Qureshi, BS Computer Sciences Student from Comsats Intitute of information technology Islamabad. Started learning pentesting/hacking in 2009. Initially was into defacing, later realized to make Pentesting/security auditing as my career. His Friends motivated him to go for bug bounties.

Pakistani Hacker code name as P@KhTuN~72 from Pak Cyber Eaglez hack 180 plus Egypt websites including 1 government site of General Authority for Supply Commodities Egypt and official site Elmaref University.

The list of impacted sites and mirrors was published on Pastebin , at press time, all of them still weren't restored.

Deface Page Say's:

"Pak Cyber Eaglez Arrived,We Are Pakistani's You Know Who Are Pakistani's?Lets Introduce Our Self,We Are That Nation Who Is Not Afraid Of Bombs Who Is Not Afraid Of Death Who Is Not Afraid Of Drone Attacks, We Are That Nation Who Defeated India Many Times In Wars, We Are That Nation Who Faced The Most Dangerous Earth Quack 2005, We Are That Nation Who Faced Dangerous Water Flood In 2010, We Are That Nation To Whom Every Body Calls Terrorists, We Are That Nation Who Lost Their Sisters Mothers & Brothers In Many Bomb Blasts, We Are That Nation Which Have No Electricity, We Are That Nation Who Have No Food For 2 Times, Want To Know More About Us Go And Ask From Your Elders Who Are Pakistani's ?Inspite Of These Difficulties We Are Not Less Than Anyone, We Are Telanted Nation, With Less Electricity We Are Defacing You Bitches :D We Made Atom Bomb, We Got Many Oskar Awards, We Are The Most Brave Nation, We Have Strong Army America Want Our Army For Their Defence, Becuase They Have Timid And Coward Army Bitches lolOk Lets Come To The Main Point, You Just Got Hacked Patch Your Asses, Don't Know How To Secure Shitts And Making Sites lol, Huh ! Now Next Time Keep Eye On Your cPanel | Domain | Your Admin Panel Becuase We Can In Again, Take CarePakistan Zindabad"Hacked Sites :

Pakistani hacker Hitcher from Team MLA(Muslim Liberation Army) hack More then 50 Israeli sites Delivered this message. Pakistani Defacer has been showing his support for Palestine by carrying out a mass attack against Israel Cyber Space. This hacker has shown no mercy to Israel and has hacked and defaced a total of 50 Israeli websites. Hackers around the world have gone into a full on rage against the Zionist state of Israel due to killing of innocent children and women.

According to hacker "The hack is done against the protest against Gaza attack by Israelis they are killing innocent children and women".

Deface Page Say's:
"We are outraged at the Palestine present condition and the Illegal occupation of Palestanaian Land By the zionist IsraelisThis attack is in response to the Injustice against the Palestinian peopleterrorist.w Israel is a serious threat to PalestinianOccupied Palestinian land under the guise of residential settlements are being increasedPalestinians are deprived of their basic human rightsInternational Aid workers are stopped from providing any humanitarian assistance to the people.The International community and media is not allowed to bring facts to world as due to strict restriction"

100+ Websites Hacked And Defaced by Widex. Most of there targets are US and Indian sites. There are no main idea about their hack but one thing for sure that this kind of hacks create lot of questions for security experts. Every years hacker are becoming more powerful than previous year. It seems like whole server is rooted and mass defaced.

The list of impacted sites and mirrors was published on Pastebin , at press time, all of them still weren’t restored.

Hacked Sites:

Mirrors:

The Hackers heaven, Zone-h, an archive of defaced websites, has been infected by a malware by "Robot Pirates". Robot Pirates is Pakistani Hacking group and was famous in their spamming and viruses coding. The whole website is not infected by malware. Today after 6 months their Twitter account tweet about saying hello to zone-h. Their is not any specific details provide by hackers. A year ago same group inject malware in zone-h.

A Pakistani Hacker named LeeT Haxor or 1337 has hacked Twitter, Toyota, Orange, norton, oracle, ibm, cisco, gameboy and bridgestone official domains of Burundi(.bi). It is not NIC hack. This time complete server is compromised. Their is not any specific reason mention behind this hack by hacker. But one thing is for sure that this kind of cyber attack really create huge questions for security experts. All sites are still defaced at the time of news published.